VMware Certified Professional 6 - Network Virtualization 6.2 Exam 試験
Question No : 1
Which three objects are supported for universal synchronization in a Cross-vCenter NSX deployment? (Choose three)
Question No : 2
An NSX Administrator is examining traffic on the network shown below:
What is the packet flow when VM1 communicates to VMS?
B is not correct ― “send it to the DLR control VM.” packet not going to DLR VM
D is not correct ― “route the packet to the DLR control VM” ― nothing goes to DLR VM
A is not correct ― “Host C will perform a destination lookup” ― as source is doing the destination lookup
Question No : 3
Which three ways can membership be defined in a dynamic security group? (Choose three)
You begin by creating a security group to define assets that you want to protect. Security groups may be static (including specific virtual machines) or dynamic where membership may be defined in one or more of the following ways:
■ vCenter containers (clusters, port groups, or datacenters)
■ Security tags, IPset, MACset, or even other security groups. For example, you may include a criteria to add all members tagged with the specified security tag (such as AntiVirus.virusFound) to the security group.
■ Directory Groups (if NSX Manager is registered with Active Directory)
■ Regular expressions such as virtual machines with name VM1
Ynamic membership of a security group can be defined by one or multiple criteria, like vCenter containers (data centers, port groups and clusters), security tags, Active Directory groups, regular expressions on virtual machine names, and so on.
Question No : 4
A group of users' needs secured access to a set of web-based applications in a SDDC.
Which VPN option is best suited for this?
Question No : 5
Which tool is used to display VXLAN connection information?
Question No : 6
An administrator needs to verify which port the switch manager is using. Which command should be used?
C. show controller-cluster connections
nsx-controller # show control-cluster connections
role port listening open conns
api_provider api/443 Y 2
persistence_server server/2878 C 0
client/2888 Y 1
election/3888 Y 0
switch_manager ovsmgmt/6632 Y 0
openflow/6633 Y 0
system cluster/7777 Y 1
Question No : 7
An administrator needs to perform a configuration backup of NSX. From which two locations can this task be performed? (Choose two.)
Question No : 8
Where does an administrator configure logging for the NSX Manager?
Syslog server is specified in the NSX Manager GUI
Question No : 9
Which NSX component can validate that security policies at your organization are being enforced correctly?
“Activity Monitoring provides visibility into your virtual network to ensure that security policies at your organization are being enforced correctly.”
Question No : 10
What is the function of NSX Data Security?
Sensitive data are defined by the security policy. Running a data security scan identifies data in the virtual environment that violates the policy.
If violation report shows 0 files, it doesn’t mean there is no sensitive data (which would be implication from option D), instead it means there is no breach of security policy.
C option seems to me better definition
Question No : 11
What is required before running an Activity Monitoring report?
You must enable data collection for one or more virtual machines on a vCenter Server before running an Activity Monitoring report. Before running a report, ensure that the enabled virtual machines are active and are generating network traffic.
Question No : 12
Which tool is used to detect rogue services?
Question No : 13
An administrator enables the NSX Ticket Logger to track infrastructure changes. The administrator logs out for lunch, returns and logs back in to complete the task.
What is the status of ticket logger when the administrator logs back in?
Question No : 14
Which component automates the consumption of third-party services and provides mapping to virtual machines using a logical policy?
C. indeed: Service Composer helps you provision and assign network and security services to applications in a virtual infrastructure. You map these services to a security group, and the services are applied to the virtual machines in the security group.
Question No : 15
Which port is used for NSX REST API Requests?
As written in the API Guide: https://pubs.vmware.com/NSX-6/topic/com.vmware.ICbase/PDF/nsx_604_api.pdf
Page 26: “The NSX Manager requires port 443/TCP for REST API requests.”
C> Agree with B, Port 443.